Testing DNSSEC

For example, once your DNS resolver has DNSSEC enabled (and OverSIP points to it), OverSIP would refuse to route a SIP request to the domain “badsign-A.test.dnssec-tools.org” since its RRSIG signature data was modified after signing. Let’s see the logs generated by OverSIP: